Show patches with: State = Action Required       |    Archived = No       |   4671 patches
« 1 2 ... 36 37 3846 47 »
Patch Series A/R/T S/W/F Date Submitter Delegate State
[RFC,2/6] lib: vsprintf: whitelist stack traces - - - 0 0 0 2017-05-06 Greg KH New
[RFC,1/6] lib: vsprintf: additional kernel pointer filtering options - - - 0 0 0 2017-05-06 Greg KH New
Re: [PATCH] add the option of fortified string.h functions - - - 0 0 0 2017-05-06 Kees Cook New
[v6,2/2] security: tty: make TIOCSTI ioctl require CAP_SYS_ADMIN 1 1 - 0 0 0 2017-05-05 Matt Brown New
[v6,1/2] security: tty: Add owner user namespace to tty_struct 1 1 - 0 0 0 2017-05-05 Matt Brown New
add the option of fortified string.h functions - - - 0 0 0 2017-05-05 Mark Rutland New
add the option of fortified string.h functions - - - 0 0 0 2017-05-05 Mark Rutland New
[v2] ata-sff: always map page before data transfer - 1 - 0 0 0 2017-05-04 Tycho Andersen New
add the option of fortified string.h functions - - - 0 0 0 2017-05-04 Mark Rutland New
add the option of fortified string.h functions - - - 0 0 0 2017-05-04 Daniel Micay New
use get_random_long for the per-task stack canary 2 - - 0 0 0 2017-05-04 Daniel Micay New
Re: [RFC, PATCH] x86_64: KAISER - do not map kernel in user mode - - - 0 0 0 2017-05-04 Daniel Gruss New
[RFC] x86_64: KAISER - do not map kernel in user mode - - - 0 0 0 2017-05-04 Daniel Gruss New
ata-sff: always map page before data transfer - - - 0 0 0 2017-05-02 Tycho Andersen New
[v9,4/4] arm64/syscalls: Optimize address limit check - 1 - 0 0 0 2017-04-28 Thomas Garnier New
[v9,3/4] arm/syscalls: Optimize address limit check - - - 0 0 0 2017-04-28 Thomas Garnier New
[v9,2/4] x86/syscalls: Optimize address limit check - - - 0 0 0 2017-04-28 Thomas Garnier New
[v9,1/4] syscalls: Verify address limit before returning to user-mode - - 1 0 0 0 2017-04-28 Thomas Garnier New
[v8,1/4] syscalls: Verify address limit before returning to user-mode - - 1 0 0 0 2017-04-27 Thomas Garnier New
Re: [PATCH v3 2/2] modules:capabilities: add a per-task modules autoload restriction - - - 0 0 0 2017-04-27 Rusty Russell New
[v8,4/4] arm64/syscalls: Optimize address limit check - 1 - 0 0 0 2017-04-26 Thomas Garnier New
[v8,3/4] arm/syscalls: Optimize address limit check - - - 0 0 0 2017-04-26 Thomas Garnier New
[v8,2/4] x86/syscalls: Optimize address limit check - - - 0 0 0 2017-04-26 Thomas Garnier New
[v8,1/4] syscalls: Verify address limit before returning to user-mode - - 1 0 0 0 2017-04-26 Thomas Garnier New
[v2,2/2] x86, refcount: Implement fast refcount overflow protection - - - 0 0 0 2017-04-25 Kees Cook New
[v2,1/2] x86, asm: Add suffix macro for GEN_*_RMWcc() - - - 0 0 0 2017-04-25 Kees Cook New
[v6,5/5] virtio_net: check return value of skb_to_sgvec always - - - 0 0 0 2017-04-25 Jason A. Donenfeld New
[v6,4/5] macsec: check return value of skb_to_sgvec always - - - 0 0 0 2017-04-25 Jason A. Donenfeld New
[v6,3/5] rxrpc: check return value of skb_to_sgvec always - - - 0 0 0 2017-04-25 Jason A. Donenfeld New
[v6,2/5] ipsec: check return value of skb_to_sgvec always - - - 0 0 0 2017-04-25 Jason A. Donenfeld New
[v6,1/5] skbuff: return -EMSGSIZE in skb_to_sgvec to prevent overflow - - - 0 0 0 2017-04-25 Jason A. Donenfeld New
[v5,5/5] virtio_net: check return value of skb_to_sgvec always - - - 0 0 0 2017-04-25 Jason A. Donenfeld New
[v5,4/5] macsec: check return value of skb_to_sgvec always - - - 0 0 0 2017-04-25 Jason A. Donenfeld New
[v5,3/5] rxrpc: check return value of skb_to_sgvec always - - - 0 0 0 2017-04-25 Jason A. Donenfeld New
[v5,2/5] ipsec: check return value of skb_to_sgvec always - - - 0 0 0 2017-04-25 Jason A. Donenfeld New
[v5,1/5] skbuff: return -EMSGSIZE in skb_to_sgvec to prevent overflow - - - 0 0 0 2017-04-25 Jason A. Donenfeld New
[v4,1/5] skbuff: return -EMSGSIZE in skb_to_sgvec to prevent overflow - - - 0 0 0 2017-04-25 Jason A. Donenfeld New
[v3,1/5] skbuff: return -EMSGSIZE in skb_to_sgvec to prevent overflow - - - 0 0 0 2017-04-25 Jason A. Donenfeld New
[v2,1/5] skbuff: return -EMSGSIZE in skb_to_sgvec to prevent overflow - - - 0 0 0 2017-04-25 Jason A. Donenfeld New
[5/5] virtio_net: check return value of skb_to_sgvec always - - - 0 0 0 2017-04-25 Jason A. Donenfeld New
[4/5] macsec: check return value of skb_to_sgvec always - - - 0 0 0 2017-04-25 Jason A. Donenfeld New
[3/5] rxrpc: check return value of skb_to_sgvec always - - - 0 0 0 2017-04-25 Jason A. Donenfeld New
[2/5] ipsec: check return value of skb_to_sgvec always - - - 0 0 0 2017-04-25 Jason A. Donenfeld New
[1/5] skbuff: return -EMSGSIZE in skb_to_sgvec to prevent overflow - - - 0 0 0 2017-04-25 Jason A. Donenfeld New
[RFC,v2,6/6] proc: flush task dcache entries from all procfs instances - - - 0 0 0 2017-04-25 Djalal Harouni New
[RFC,v2,5/6] proc: instantiate only pids that we can ptrace on 'limit_pids=1' mount option - - - 0 0 0 2017-04-25 Djalal Harouni New
[RFC,v2,4/6] proc: support mounting private procfs instances inside same pid namespace - - - 0 0 0 2017-04-25 Djalal Harouni New
[RFC,v2,3/6] proc: add helpers to set and get proc hidepid and gid mount options - - - 0 0 0 2017-04-25 Djalal Harouni New
[RFC,v2,2/6] proc: move /proc/{self|thread-self} dentries to proc_fs_info - - - 0 0 0 2017-04-25 Djalal Harouni New
[RFC,v2,1/6] proc: add proc_fs_info struct to store proc information - - - 0 0 0 2017-04-25 Djalal Harouni New
[v5,2/2] security: tty: make TIOCSTI ioctl require CAP_SYS_ADMIN - - - 0 0 0 2017-04-25 Matt Brown New
[v5,1/2] security: tty: Add owner user namespace to tty_struct - - - 0 0 0 2017-04-25 Matt Brown New
[v4,2/2] tiocsti-restrict : make TIOCSTI ioctl require CAP_SYS_ADMIN 1 - - 0 0 0 2017-04-24 Matt Brown New
[v4,1/2] tiocsti-restrict : Add owner user namespace to tty_struct 1 - - 0 0 0 2017-04-24 Matt Brown New
[v3,2/2] tiocsti-restrict : make TIOCSTI ioctl require CAP_SYS_ADMIN 1 - - 0 0 0 2017-04-23 Matt Brown New
[v3,1/2] tiocsti-restrict : Add owner user namespace to tty_struct - - - 0 0 0 2017-04-23 Matt Brown New
[v2,2/2] tiocsti-restrict : make TIOCSTI ioctl require CAP_SYS_ADMIN - - - 0 0 0 2017-04-23 Matt Brown New
[v2,1/2] tiocsti-restrict : Add owner user namespace to tty_struct - - - 0 0 0 2017-04-23 Matt Brown New
x86/refcount: Implement fast refcount_t handling - - - 0 0 0 2017-04-21 Kees Cook New
[v2] powerpc/mm: Add support for runtime configuration of ASLR limits 1 2 - 0 0 0 2017-04-20 Michael Ellerman New
[v3,2/2] modules:capabilities: add a per-task modules autoload restriction - - - 0 0 0 2017-04-19 Djalal Harouni New
[v3,1/2] modules:capabilities: automatic module loading restriction - - - 0 0 0 2017-04-19 Djalal Harouni New
powerpc/mm: Add support for runtime configuration of ASLR limits - - - 0 0 0 2017-04-19 Michael Ellerman New
make TIOCSTI ioctl require CAP_SYS_ADMIN - - - 0 0 0 2017-04-19 Matt Brown New
[4/4] added kernel.tiocsti_restrict sysctl - - - 0 0 0 2017-04-17 Matt Brown New
[3/4] restrict unprivileged TIOCSTI tty ioctl - - - 0 0 0 2017-04-17 Matt Brown New
[2/4] add tiocsti_restrict variable - - - 0 0 0 2017-04-17 Matt Brown New
[1/4] added SECURITY_TIOCSTI_RESTRICT kernel config - - - 0 0 0 2017-04-17 Matt Brown New
[00/18] Introduce struct layout randomization plugin - - - 0 0 0 2017-04-13 Laura Abbott New
[v7,4/4] arm64/syscalls: Architecture specific pre-usermode check - 1 - 0 0 0 2017-04-10 Thomas Garnier New
[v7,4/4] arm64/syscalls: Architecture specific pre-usermode check - - - 0 0 0 2017-04-10 Thomas Garnier New
[v7,4/4] arm64/syscalls: Architecture specific pre-usermode check - 1 - 0 0 0 2017-04-10 Thomas Garnier New
[v7,3/4] arm/syscalls: Architecture specific pre-usermode check - - - 0 0 0 2017-04-10 Thomas Garnier New
[v7,2/4] x86/syscalls: Architecture specific pre-usermode check - - - 0 0 0 2017-04-10 Thomas Garnier New
[v7,1/4] syscalls: Restore address limit after a syscall - - 1 0 0 0 2017-04-10 Thomas Garnier New
[RFC,v2,3/3] Documentation: add ModAutoRestrict LSM documentation - - - 0 0 0 2017-04-09 Djalal Harouni New
[RFC,v2,2/3] security: add the ModAutoRestrict Linux Security Module - - - 0 0 0 2017-04-09 Djalal Harouni New
[RFC,v2,1/3] LSM: Allow per LSM module per "struct task_struct" blob. - - - 0 0 0 2017-04-09 Djalal Harouni New
[18/18] ACPICA: Use designated initializers - - - 0 0 0 2017-04-06 Kees Cook New
[17/18] sgi-xp: Use designated initializers - - - 0 0 0 2017-04-06 Kees Cook New
[16/18] task_struct: Allow randomized layout - - - 0 0 0 2017-04-06 Kees Cook New
[15/18] randstruct: Enable function pointer struct detection - - - 0 0 0 2017-04-06 Kees Cook New
[14/18] randstruct: Disable randomization of ACPICA structs - - - 0 0 0 2017-04-06 Kees Cook New
[13/18] randstruct: opt-out externally exposed function pointer structs - - - 0 0 0 2017-04-06 Kees Cook New
[12/18] ovl: Use designated initializers - - - 0 0 0 2017-04-06 Kees Cook New
[11/18] scsi: qedi,qedf: Use designated initializers - - - 0 0 0 2017-04-06 Kees Cook New
[10/18] scsi/bfa: use designated initializers - - - 0 0 0 2017-04-06 Kees Cook New
[09/18] randstruct: Mark various structs for randomization - - - 0 0 0 2017-04-06 Kees Cook New
[08/18] randstruct: Whitelist UNIXCB cast - - - 0 0 0 2017-04-06 Kees Cook New
[07/18] randstruct: Whitelist struct security_hook_heads cast - - - 0 0 0 2017-04-06 Kees Cook New
[06/18] NFS: Avoid cross-structure casting - - - 0 0 0 2017-04-06 Kees Cook New
[05/18] af_unix: Use designated initializers - - - 0 0 0 2017-04-06 Kees Cook New
[04/18] randstruct: Differentiate bad cast warnings - - - 0 0 0 2017-04-06 Kees Cook New
[03/18] randstruct: Set designated_init attribute - - - 0 0 0 2017-04-06 Kees Cook New
[02/18] compiler: Add __designated_init annotation - - - 0 0 0 2017-04-06 Kees Cook New
[01/18] gcc-plugins: Add the randstruct plugin - - - 0 0 0 2017-04-06 Kees Cook New
[v5,2/2] extable: verify address is read-only - - - 0 0 0 2017-04-06 Eddie Kovsky New
[v5,1/2] module: verify address is read-only 1 - - 0 0 0 2017-04-06 Eddie Kovsky New
[v2,7/7] refcount: Check bad states with CHECK_DATA_CORRUPTION() - - - 0 0 0 2017-04-04 Kees Cook New
[v2,6/7] notifiers: Use CHECK_DATA_CORRUPTION() on checks - - - 0 0 0 2017-04-04 Kees Cook New
« 1 2 ... 36 37 3846 47 »